![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / net / mitmproxy
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.48 / (download) - annotate - [select for diffs], Sun Mar 24 20:00:11 2024 UTC (3 weeks, 2 days ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2024Q1-base,
pkgsrc-2024Q1,
HEAD
Changes since 1.47: +3 -3
lines
Diff to previous 1.47 (colored) to selected 1.22 (colored)
mitmproxy: Update to 10.2.4 Changes: ## mitmproxy 10.2.4 * Fix a bug where errors during startup would not be displayed when running mitmproxy. * Use newer cryptography APIs to avoid CryptographyDeprecationWarnings. This bumps the minimum required version to cryptography 42.0. ## mitmproxy 10.2.3 * Fix a regression where `allow_hosts`/`ignore_hosts` would break with IPv6 connections. * Fix bug where failed CONNECT request URLs are saved to HAR files incorrectly. * Fix duplicate answers being returned in DNS queries. * Fix bug where wireguard config is generated with incorrect endpoint when two or more NICs are active. * Fix a regression when leaf cert creation would fail with intermediate CAs in `ca_file`. * Add `content_view_lines_cutoff` option to mitmdump * Allow runtime modifications of HTTP flow filters for server replays * Fix bug view options menu in case of overflow * Allow --allow-hosts and --ignore-hosts to work together ## mitmproxy 10.2.2 * Fix a regression where clientplayback would break due to eager task execution. * Fix a regression where WebSocket connections would break due to eager task execution. * Fix bug where insecure HTTP requests are saved incorrectly when exporting to HAR files. * `allow_hosts`/`ignore_hosts` option now matches against the full `host:port` string.
Revision 1.47 / (download) - annotate - [select for diffs], Sun Jan 28 08:29:03 2024 UTC (2 months, 2 weeks ago) by wiz
Branch: MAIN
Changes since 1.46: +2 -1
lines
Diff to previous 1.46 (colored) to selected 1.22 (colored)
mitmproxy: add missing tool
Revision 1.46 / (download) - annotate - [select for diffs], Sat Jan 6 23:39:24 2024 UTC (3 months, 1 week ago) by leot
Branch: MAIN
Changes since 1.45: +34 -22
lines
Diff to previous 1.45 (colored) to selected 1.22 (colored)
mitmproxy: Update to 10.2.1
pkgsrc changes:
- Update DESCR and COMMENT based respectively on upstream's README and
GitHub project description
- Switch to non-versioned py-OpenSSL. mitmproxy now needs Rust-y bits also for
mitmproxy_rs. Possibly avoiding Rust py-cryptography no longer helps.
- Adjust SUBST-fu in order to address dependencies versions in pyproject.toml,
not setup.py (per upstream usage)
Changes:
## 06 January 2024: mitmproxy 10.2.1
* Fix a regression introduced in mitmproxy 10.2.0: WireGuard servers
now bind to all interfaces again.
* Remove stale reference to ctx.log in addon documentation.
* Fix a bug where a traceback is shown during shutdown.
## 04 January 2024: mitmproxy 10.2.0
* Local Redirect Mode is now officially available on macOS and Windows.
See the linked blog posts for details.
* UDP streams are now backed by a new implementation in mitmproxy_rs.
This represents a major API change as UDP traffic is now exposed as
streams instead of a callback for each packet.
* Fix a regression from mitmproxy 10.1.6 where ignore_hosts would
terminate requests instead of forwarding them.
* ignore_hosts now waits for the entire HTTP headers if it suspects the
connection to be HTTP.
## 14 December 2023: mitmproxy 10.1.6
* Fix compatibility with Windows Schannel clients, which previously got
confused by CA and leaf certificate sharing the same Subject Key Identifier.
* Change keybinding for exporting flow from "e" to "x" to avoid conflict with "edit" keybinding.
* Fix bug where response flows from HAR files had incorrect `content-length` headers
* Improved handling for `allow_hosts`/`ignore_hosts` options in WireGuard mode.
* Fix a bug where TCP connections were not closed properly.
* DNS resolution is now exempted from `ignore_hosts` in WireGuard Mode.
* Fix case sensitivity of URL added to blocklist
* Fix a bug where logging was stopped prematurely during shutdown.
* For plaintext traffic, `ignore_hosts` now also takes HTTP/1 host headers into account.
* Fix empty cookie attributes being set to `Key=` instead of `Key`
* Scripts with relative paths are now loaded relative to the config file and not where the command is ran
* Fix `mitmweb` splitter becoming drag and drop.
* Enhance documentation and add alert log messages when stream_large_bodies and modify_body are set
* Subject Alternative Names are now represented as `cryptography.x509.GeneralNames` instead of `list[str]`
across the codebase. This fixes a regression introduced in mitmproxy 10.1.1 related to punycode domain encoding.
## 14 November 2023: mitmproxy 10.1.5
* Remove stray `replay-extra` from CLI status bar.
## 13 November 2023: mitmproxy 10.1.4
* Fix a hang/freeze in the macOS distributions when doing TLS negotiation.
* Update savehar addon to fix creating corrupt har files caused by empty response content
* Update savehar addon to handle scenarios where "path" key in cookie
attrs dict is missing.
* Add `server_replay_extra` option to serverplayback to define behaviour
when replayable response is missing.
## 04 November 2023: mitmproxy 10.1.3
* Fix a bug introduced in mitmproxy 10.1.2 where mitmweb would fail to establish
a WebSocket connection. Affected users may need to clear their browser cache
or hard-reload mitmweb (Ctrl+Shift+R).
## 03 November 2023: mitmproxy 10.1.2
* Add a raw hex stream contentview.
* Add a contentview for DNS-over-HTTPS.
* Replaced standalone mitmproxy binaries on macOS with an app bundle
that contains the mitmproxy/mitmweb/mitmdump CLI tools.
This change was necessary to support macOS code signing requirements.
Homebrew remains the recommended installation method.
* Fix certificate generation to work with strict mode OpenSSL 3.x clients
* Fix path() documentation that the return value might include the query string
* mitmproxy now officially supports Python 3.12.
* Fix root-relative URLs so that mitmweb can run in subdirectories.
* Add an optional parameter(ldap search filter key) to ProxyAuth-LDAP.
* Fix a regression when using the proxyauth addon with clients that (rightfully) reuse connections.
## 27 September 2023: mitmproxy 10.1.1
* Fix certificate generation for punycode domains.
* Fix a bug that would crash mitmweb when opening options.
## 24 September 2023: mitmproxy 10.1.0
* Add support for reading HAR files using the existing flow loading APIs, e.g. `mitmproxy -r example.har`.
* Add support for writing HAR files using the `save.har` command and the `hardump` option for mitmdump.
* Packaging changes:
- `mitmproxy-rs` does not depend on a protobuf compiler being available anymore,
we're now also providing a working source distribution for all platforms.
- On macOS, `mitmproxy-rs` now depends on `mitmproxy-macos`. We only provide binary wheels for this package because
it contains a code-signed system extension. Building from source requires a valid Apple Developer Id, see CI for
details.
- On Windows, `mitmproxy-rs` now depends on `mitmproxy-windows`. We only provide binary wheels for this package to
simplify our deployment process, see CI for how to build from source.
* Increase maximum dump file size accepted by mitmweb
## 04 August 2023: mitmproxy 10.0.0
* Add experimental support for HTTP/3 and QUIC.
* ASGI/WSGI apps can now listen on all ports for a specific hostname.
This makes it simpler to accept both HTTP and HTTPS.
* Add `replay.server.add` command for adding flows to server replay buffer
* Remove string escaping in raw view.
* Updating `Request.port` now also updates the Host header if present.
This aligns with `Request.host`, which already does this.
* Fix editing of multipart HTTP requests from the CLI.
* Add documentation on using Magisk module for intercepting traffic in Android production builds.
* Fix a bug where the direction indicator in the message stream view would be in the wrong direction.
* Fix a bug where peername would be None in tls_passthrough script, which would make it not working.
* the `esc` key can now be used to exit the current view
* focus-follow shortcut will now work in flow view context too.
* Fix a bug where a server connection timeout would cause requests to be issued with a wrong SNI in reverse proxy mode.
* The `server_replay_nopop` option has been renamed to `server_replay_reuse` to avoid confusing double-negation.
* Add zstd to valid gRPC encoding schemes.
* For reverse proxy directly accessed via IP address, the IP address is now included
as a subject in the generated certificate.
* Enable legacy SSL connect when connecting to server if the `ssl_insecure` flag is set.
* Change wording in the http-reply-from-proxy.py example
* Added option to specify an elliptic curve for key exchange between mitmproxy <-> server
* Add "Prettier" code linting tool to mitmweb.
* When logging exceptions, provide the entire exception object to log handlers
* mitmproxy now requires Python 3.10 or above.
### Breaking Changes
* The `onboarding_port` option has been removed. The onboarding app now responds
to all requests for the hostname specified in `onboarding_host`.
* `connection.Client` and `connection.Server` now accept keyword arguments only.
This is a breaking change for custom addons that use these classes directly.
## 02 November 2022: mitmproxy 9.0.1
* The precompiled binaries now ship with OpenSSL 3.0.7, which resolves CVE-2022-3602 and CVE-2022-3786.
* Performance and stability improvements for WireGuard mode.
* Fix a bug where the standalone Linux binaries would require libffi to be installed.
* Hard exit when mitmproxy cannot write logs, fixes endless loop when parent process exits.
* Fix a permission error affecting the Docker images.
## 28 October 2022: mitmproxy 9.0.0
### Major Features
* Add Raw UDP support.
* Add WireGuard mode to enable transparent proxying via WireGuard.
* Add DTLS support.
* Add a quick help bar to mitmproxy.
### Deprecations
* Deprecate `add_log` event hook. Users should use the builtin `logging` module instead.
* Deprecate `mitmproxy.ctx.log` in favor of Python's builtin `logging` module.
### Breaking Changes
* The `mode` option is now a list of server specs instead of a single spec.
The CLI interface is unaffected, but users may need to update their `config.yaml`.
### Full Changelog
* Mitmproxy binaries now ship with Python 3.11.
* One mitmproxy instance can now spawn multiple proxy servers.
* Add syntax highlighting to JSON and msgpack content view.
* Add MQTT content view.
* Setting `connection_strategy` to `lazy` now also disables early
upstream connections to fetch TLS certificate details.
* Fix order of event hooks on startup.
* Include server information in bind/listen errors.
* Include information about lazy connection_strategy in related errors.
* Fix `tls_version_server_min` and `tls_version_server_max` options.
* Added Magisk module generation for Android onboarding.
* Update Linux binary builder to Ubuntu 20.04, bumping the minimum glibc version to 2.31.
* Add "Save filtered" button in mitmweb.
* Render application/prpc content as gRPC/Protocol Buffers
* Mitmweb now supports `content_view_lines_cutoff`.
* Fix a mitmweb crash when scrolling down the flow list.
* Add HTTP/3 binary frame content view.
* Fix mitmweb not properly opening a browser and being stuck on some Linux.
* Fix race condition when updating mitmweb WebSocket connections that are closing.
* Fix mitmweb crash when using filters.
* Fix missing default port when starting a browser.
* Add docs for transparent mode on Windows.
Revision 1.45 / (download) - annotate - [select for diffs], Mon Oct 23 06:37:49 2023 UTC (5 months, 3 weeks ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2023Q4-base,
pkgsrc-2023Q4
Changes since 1.44: +3 -3
lines
Diff to previous 1.44 (colored) to selected 1.22 (colored)
*: update for Python base package change Instead of depending on one of the removed packages (that are now included in the base Python packages), include batteries-included.mk to require a Python version that supplies them. Remove now included packages. Bump PKGREVISION.
Revision 1.44 / (download) - annotate - [select for diffs], Mon Aug 14 05:25:02 2023 UTC (8 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2023Q3-base,
pkgsrc-2023Q3
Changes since 1.43: +2 -1
lines
Diff to previous 1.43 (colored) to selected 1.22 (colored)
*: recursive bump for Python 3.11 as new default
Revision 1.43 / (download) - annotate - [select for diffs], Tue Aug 1 23:20:51 2023 UTC (8 months, 2 weeks ago) by wiz
Branch: MAIN
Changes since 1.42: +2 -2
lines
Diff to previous 1.42 (colored) to selected 1.22 (colored)
*: remove more references to Python 3.7
Revision 1.42 / (download) - annotate - [select for diffs], Wed Oct 19 14:25:18 2022 UTC (17 months, 4 weeks ago) by nia
Branch: MAIN
CVS Tags: pkgsrc-2023Q2-base,
pkgsrc-2023Q2,
pkgsrc-2023Q1-base,
pkgsrc-2023Q1,
pkgsrc-2022Q4-base,
pkgsrc-2022Q4
Changes since 1.41: +3 -2
lines
Diff to previous 1.41 (colored) to selected 1.22 (colored)
fighting a losing battle against the py-cryptography rustification, part 5 Convert py-OpenSSL users to versioned_dependencies.mk
Revision 1.41 / (download) - annotate - [select for diffs], Fri Jul 8 12:57:26 2022 UTC (21 months, 1 week ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2022Q3-base,
pkgsrc-2022Q3
Changes since 1.40: +3 -7
lines
Diff to previous 1.40 (colored) to selected 1.22 (colored)
mitmproxy: Update to 8.1.1 pkgsrc changes: - Follow upstream requirements for py-cryptography (previously a workaround was added in order to avoid possible too new py-cryptography that was not yet present in pkgsrc) Changes: 8.1.1 ----- * Support specifying the local address for outgoing connections * Fix a bug where an excess empty chunk has been sent for chunked HEAD request. * Drop pkg_resources dependency. * Fix huge (>65kb) http2 responses corrupted. * Remove overambitious assertions in the HTTP state machine, fix some error handling.
Revision 1.40 / (download) - annotate - [select for diffs], Thu Jun 30 11:18:42 2022 UTC (21 months, 2 weeks ago) by nia
Branch: MAIN
Changes since 1.39: +2 -1
lines
Diff to previous 1.39 (colored) to selected 1.22 (colored)
*: Revbump packages that use Python at runtime without a PKGNAME prefix
Revision 1.39 / (download) - annotate - [select for diffs], Sat Jun 18 20:40:17 2022 UTC (21 months, 4 weeks ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2022Q2-base,
pkgsrc-2022Q2
Changes since 1.38: +13 -10
lines
Diff to previous 1.38 (colored) to selected 1.22 (colored)
mitmproxy: Update to 8.1.0
pkgsrc changes:
- Now needs Python>=3.9 per upstream
- Further relax py-cryptography needs (seems to runs fine also with older
py-cryptography) because in pkgsrc we do not have yet cryptography>=36.
Changes:
## 15 May 2022: mitmproxy 8.1.0
* Mostly a Bug fix release
* DNS support
* Mitmproxy now requires Python 3.9 or above.
## 19 March 2022: mitmproxy 8.0.0
### Major Changes
* Major improvements to the web interface
* Event hooks can now be async
* New `tls_{established,failed}_{client,server}` event hooks to record
negotiation success/failure
### Security Fixes
* CVE-2022-24766: Fix request smuggling vulnerability reported by @zeyu2001
Revision 1.38 / (download) - annotate - [select for diffs], Mon Jan 10 22:43:41 2022 UTC (2 years, 3 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2022Q1-base,
pkgsrc-2022Q1
Changes since 1.37: +3 -2
lines
Diff to previous 1.37 (colored) to selected 1.22 (colored)
mitmproxy: convert to egg.mk
Revision 1.37 / (download) - annotate - [select for diffs], Thu Dec 30 13:05:40 2021 UTC (2 years, 3 months ago) by adam
Branch: MAIN
Changes since 1.36: +2 -2
lines
Diff to previous 1.36 (colored) to selected 1.22 (colored)
Forget about Python 3.6
Revision 1.36 / (download) - annotate - [select for diffs], Thu Sep 16 11:52:19 2021 UTC (2 years, 7 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2021Q4-base,
pkgsrc-2021Q4,
pkgsrc-2021Q3-base,
pkgsrc-2021Q3
Changes since 1.35: +2 -2
lines
Diff to previous 1.35 (colored) to selected 1.22 (colored)
mitmproxy: Update to 7.0.3 Changes: 7.0.3 ----- * CVE-2021-39214: Fix request smuggling vulnerabilities reported by @chinchila * Expose TLS 1.0 as possible minimum version on older pyOpenSSL releases * Fix compatibility with Python 3.10 7.0.2 ----- * Fix a WebSocket crash introduced in 7.0.1 7.0.1 ----- * Performance: Re-use OpenSSL contexts to enable TLS session resumption * Disable HTTP/2 CONNECT for Secure Web Proxies to fix compatibility with Firefox * Use local IP address as certificate subject if no other info is available * Make it possible to return multiple chunks for HTTP stream modification * Don't send WebSocket CONTINUATION frames when the peer does not send any * Fix HTTP stream modify example. * Fix a crash caused by no-op assignments to `Server.address` * Fix a crash when encountering invalid certificates * Fix a crash when pressing the Home/End keys in some screens * Fix a crash when reading corrupted flow dumps * Fix multiple crashes on flow export * Fix a bug where ASGI apps did not see the request body * Minor documentation improvements
Revision 1.35 / (download) - annotate - [select for diffs], Sat Jul 17 14:14:47 2021 UTC (2 years, 9 months ago) by leot
Branch: MAIN
Changes since 1.34: +3 -5
lines
Diff to previous 1.34 (colored) to selected 1.22 (colored)
mitmproxy: Update to 7.0.0 Changes: ## 16 July 2021: mitmproxy 7.0.0 ### New Proxy Core (@mhils, [blog post](https://www.mitmproxy.org/posts/releases/mitmproxy7/)) Mitmproxy has a completely new proxy core, fixing many longstanding issues: * **Secure Web Proxy:** Mitmproxy now supports TLS-over-TLS to already encrypt the connection to the proxy. * **Server-Side Greetings:** Mitmproxy now supports proxying raw TCP connections, including ones that start with a server-side greeting (e.g. SMTP). * **HTTP/1 ãàHTTP/2 Interoperability:** mitmproxy can now accept an HTTP/2 connection from the client, and forward it to an HTTP/1 server. * **HTTP/2 Redirects:** The request destination can now be changed on HTTP/2 flows. * **Connection Strategy:** Users can now specify if they want mitmproxy to eagerly connect upstream or wait as long as possible. Eager connections are required to detect protocols with server-side greetings, lazy connections enable the replay of responses without connecting to an upstream server. * **Timeout Handling:** Mitmproxy will now clean up idle connections and also abort requests if the client disconnects in the meantime. * **Host Header-based Proxying:** If the request destination is unknown, mitmproxy now falls back to proxying based on the Host header. This means that requests can often be redirected to mitmproxy using DNS spoofing only. * **Internals:** All protocol logic is now separated from I/O (["sans-io"](https://sans-io.readthedocs.io/)). This greatly improves testing capabilities, prevents a wide array of race conditions, and increases proper isolation between layers. ### Additional Changes * mitmproxy's command line interface now supports Windows (@mhils) * The `clientconnect`, `clientdisconnect`, `serverconnect`, `serverdisconnect`, and `log` events have been replaced with new events, see addon documentation for details (@mhils) * Contentviews now implement `render_priority` instead of `should_render`, allowing more specialization (@mhils) * Addition of block_list option to block requests with a set status code (@ericbeland) * Make mitmweb columns configurable and customizable (@gorogoroumaru) * Automatic JSON view mode when `+json` suffix in content type (@kam800) * Use pyca/cryptography to generate certificates, not pyOpenSSL (@mhils) * Remove the legacy protocol stack (@Kriechi) * Remove all deprecated pathod and pathoc tools and modules (@Kriechi) * In reverse proxy mode, mitmproxy now does not assume TLS if no scheme is given but a custom port is provided (@mhils) * Remove the following options: `http2_priority`, `relax_http_form_validation`, `upstream_bind_address`, `spoof_source_address`, and `stream_websockets`. If you depended on one of them please let us know. mitmproxy never phones home, which means we don't know how prominently these options were used. (@mhils) * Fix IDNA host 'Bad HTTP request line' error (@grahamrobbins) * Pressing `?` now exits console help view (@abitrolly) * `--modify-headers` now works correctly when modifying a header that is also part of the filter expression (@Prinzhorn) * Fix SNI-related reproducibility issues when exporting to curl/httpie commands. (@dkasak) * Add option `export_preserve_original_ip` to force exported command to connect to IP from original request. Only supports curl at the moment. (@dkasak) * Major proxy protocol testing (@r00t-) * Switch Docker image release to be based on Debian (@PeterDaveHello) * Multiple Browsers: The `browser.start` command may be executed more than once to start additional browser sessions. (@rbdixon) * Improve readability of SHA256 fingerprint. (@wrekone) * Metadata and Replay Flow Filters: Flows may be filtered based on metadata and replay status. (@rbdixon) * Flow control: don't read connection data faster than it can be forwarded. (@hazcod) * Docker images for ARM64 architecture (@hazcod, @mhils) * Fix parsing of certificate issuer/subject with escaped special characters (@Prinzhorn) * Customize markers with emoji, and filters: The `flow.mark` command may be used to mark a flow with either the default "red ball" marker, a single character, or an emoji like `:grapes:`. Use the `~marker` filter to filter on marker characters. (@rbdixon) * New `flow.comment` command to add a comment to the flow. Add `~comment <regex>` filter syntax to search flow comments. (@rbdixon) * Fix multipart forms losing `boundary` values on edit. (@roytu) * `Transfer-Encoding: chunked` HTTP message bodies are now retained if they are below the stream_large_bodies limit. (@mhils) * `json()` method for HTTP Request and Response instances will return decoded JSON body. (@rbdixon) * Support for HTTP/2 Push Promises has been dropped. (@mhils) * Make it possible to set sequence options from the command line. (@Yopi)
Revision 1.34 / (download) - annotate - [select for diffs], Fri Feb 26 08:47:03 2021 UTC (3 years, 1 month ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2021Q2-base,
pkgsrc-2021Q2,
pkgsrc-2021Q1-base,
pkgsrc-2021Q1
Changes since 1.33: +3 -1
lines
Diff to previous 1.33 (colored) to selected 1.22 (colored)
mitmproxy: Add missing dependency to py-sqlite3 Reported by Austin Wise via <https://github.com/NetBSD/pkgsrc/pull/84>, thanks! PKGREVISION++
Revision 1.33 / (download) - annotate - [select for diffs], Sat Dec 19 11:54:41 2020 UTC (3 years, 3 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2020Q4-base,
pkgsrc-2020Q4
Changes since 1.32: +9 -10
lines
Diff to previous 1.32 (colored) to selected 1.22 (colored)
mitmproxy: Update to 6.0.2 Changes: 15 December 2020: mitmproxy 6.0.2 ================================= * Fix reading of saved flows in mitmweb. 13 December 2020: mitmproxy 6.0.1 ================================= * Fix flow serialization in mitmweb. 13 December 2020: mitmproxy 6.0 =============================== * Mitmproxy now requires Python 3.8 or above. * Deprecation of pathod and pathoc tools and modules. Future releases will not contain them! (@Kriechi) * SSLKEYLOGFILE now supports TLS 1.3 secrets (@mhils) * Fix query parameters in asgiapp addon (@jpstotz) * Fix command history failing on file I/O errors (@Kriechi) * Add example addon to suppress unwanted error messages sent by mitmproxy. (@anneborcherding) * Updated imports and styles for web scanner helper addons. (@anneborcherding) * Inform when underscore-formatted options are used in client arg. (@jrblixt) * ASGIApp now ignores loaded HTTP flows from somewhere. (@linw1995) * Binaries are now built with Python 3.9 (@mhils) * Fixed the web UI showing blank page on clicking details tab when server address is missing (@samhita-sopho) * Tests: Replace asynctest with stdlib mock (@felixonmars) * MapLocal now keeps its configuration when other options are set. (@mhils) * Host headers with non-standard ports are now properly updated in reverse proxy mode. (@mhils) * Fix missing host header when replaying HTTP/2 flows (@Granitosaurus)
Revision 1.32 / (download) - annotate - [select for diffs], Fri Dec 4 20:45:34 2020 UTC (3 years, 4 months ago) by nia
Branch: MAIN
Changes since 1.31: +2 -1
lines
Diff to previous 1.31 (colored) to selected 1.22 (colored)
Revbump packages with a runtime Python dep but no version prefix. For the Python 3.8 default switch.
Revision 1.31 / (download) - annotate - [select for diffs], Tue Nov 24 17:06:50 2020 UTC (3 years, 4 months ago) by leot
Branch: MAIN
Changes since 1.30: +8 -6
lines
Diff to previous 1.30 (colored) to selected 1.22 (colored)
mitmproxy: Update to 5.3.0 Changes: 5.3.0 ===== * Support for Python 3.9 (@mhils) * Add MsgPack content viewer (@tasn) * Use `@charset` to decode CSS files if available (@prinzhorn) * Fix links to anticache docs in mitmweb and use HTTPS for links to documentation (@rugk) * Updated typing for WebsocketMessage.content (@prinzhorn) * Add option `console_strip_trailing_newlines`, and no longer strip trailing newlines by default (@capt8bit) * Prevent transparent mode from connecting to itself in the basic cases (@prinzhorn) * Display HTTP trailers in mitmweb (@sanlengjingvv) * Revamp onboarding app (@mhils) * Add ASGI support for embedded apps (@mhils) * Updated raw exports to not remove headers (@wchasekelley) * Fix file unlinking before external viewer finishes loading (@wchasekelley) * Add --cert-passphrase command line argument (@mirosyn) * Add interactive tutorials to the documentation (@mplattner) * Support `deflateRaw` for `Content-Encoding`'s (@kjoconnor) * Fix broken requests without body on HTTP/2 (@Kriechi) * Add support for sending (but not parsing) HTTP Trailers to the HTTP/1.1 protocol (@bburky) * Add support to echo http trailers in dumper addon (@shiv6146) * Fix OpenSSL requiring different CN for root and leaf certificates (@mhils) * ... and various other fixes, documentation improvements, dependency version bumps, etc.
Revision 1.30 / (download) - annotate - [select for diffs], Sun Jul 19 16:01:27 2020 UTC (3 years, 8 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2020Q3-base,
pkgsrc-2020Q3
Changes since 1.29: +3 -3
lines
Diff to previous 1.29 (colored) to selected 1.22 (colored)
mitmproxy: Update to 5.2 Changes: 5.2 --- * Add Filter message to mitmdump (@sarthak212) * Display TCP flows at flow list (@Jessonsotoventura, @nikitastupin, @mhils) * Colorize JSON Contentview (@sarthak212) * Fix console crash when entering regex escape character in half-open string (@sarthak212) * Integrate contentviews to TCP flow details (@nikitastupin) * Added add-ons that enhance the performance of web application scanners (@anneborcherding) * Increase WebSocket message timestamp precision (@JustAnotherArchivist) * Fix HTTP reason value on HTTP/2 reponses (@rbdixon) * mitmweb: support wslview to open a web browser (@G-Rath) * Fix dev version detection with parent git repo (@JustAnotherArchivist) * Restructure examples and supported addons (@mhils) * Certificate generation: mark SAN as critical if no CN is set (@mhils) * Simplify Replacements with new ModifyBody addon (@mplattner) * Rename SetHeaders addon to ModifyHeaders (@mplattner) * mitmweb: "New -> File" menu option has been renamed to "Clear All" (@yogeshojha) * Add new MapRemote addon to rewrite URLs of requests (@mplattner) * Add support for HTTP Trailers to the HTTP/2 protocol (@sanlengjingvv and @Kriechi) * Fix certificate runtime error during expire cleanup (@gorogoroumaru) * Fixed the DNS Rebind Protection for secure support of IPv6 addresses (@tunnelpr0) * WebSockets: match the HTTP-WebSocket flow for the ~websocket filter (@Kriechi) * Fix deadlock caused by the "replay.client.stop" command (@gorogoroumaru) * Add new MapLocal addon to serve local files instead of remote resources (@mplattner and @mhils) * Add minimal TCP interception and modification (@nikitastupin) * Add new CheckSSLPinning addon to check SSL-Pinning on client (@su-vikas) * Add a JSON dump script: write data into a file or send to an endpoint as JSON (@emedvedev) * Fix console output formatting (@sarthak212) * Add example for proxy authentication using selenium (@anneborcherding and @weichweich)
Revision 1.29 / (download) - annotate - [select for diffs], Mon Apr 13 20:40:22 2020 UTC (4 years ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2020Q2-base,
pkgsrc-2020Q2
Changes since 1.28: +6 -6
lines
Diff to previous 1.28 (colored) to selected 1.22 (colored)
mitmproxy: Update to 5.1.1
Changes:
5.1.1
-----
* Fixed Docker images not starting due to missing shell
5.1
---
** Major Changes **
* Initial Support for TLS 1.3
** Full Changelog **
* Reduce leaf certificate validity to one year due to upcoming browser
changes (@mhils)
* Rename mitmweb's web_iface option to web_host for consistency (@oxr463)
* Sending a SIGTERM now exits mitmproxy without prompt, SIGINT still
asks (@ThinkChaos)
* Don't force host header on outgoing requests (@mhils)
* Additional documentation and examples for WebSockets (@Kriechi)
* Gracefully handle hyphens in domain names (@matosconsulting)
* Fix header replacement count (@naivekun)
* Emit serverconnect event only after a connection has been
established (@Prinzhorn)
* Fix ValueError in table mode of server replay flow (@ylmrx)
* HTTP/2: send all stream reset types to other connection (@rohfle)
* HTTP/2: fix WINDOW_UPDATE swallowed on closed streams (@Kriechi)
* Fix wrong behavior of --allow-hosts options (@BlownSnail)
* Additional and updated documentation for examples, WebSockets,
Getting Started (@Kriechi)
Revision 1.28 / (download) - annotate - [select for diffs], Wed Jan 1 21:30:03 2020 UTC (4 years, 3 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2020Q1-base,
pkgsrc-2020Q1
Changes since 1.27: +2 -2
lines
Diff to previous 1.27 (colored) to selected 1.22 (colored)
mitmproxy: Update to 5.0.1 Changes: 5.0.1 ----- * Fixed precompiled Linux binaries to not crash in table mode. * Support image/webp preview in mitmweb
Revision 1.27 / (download) - annotate - [select for diffs], Tue Dec 17 10:21:51 2019 UTC (4 years, 4 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2019Q4-base,
pkgsrc-2019Q4
Changes since 1.26: +18 -15
lines
Diff to previous 1.26 (colored) to selected 1.22 (colored)
mitmproxy: Update to 5.0.0 Changes: 5.0.0 ----- ** Major Changes ** * Added new Table UI (@Jessonsotoventura) * Added EKU extension to certificates. This fixes support for macOS Catalina (@vin01) ** Security Fixes ** * Fixed command injection vulnerabilities when exporting flows as curl/httpie commands (@cript0nauta) * Do not echo unsanitized user input in HTTP error responses (@fimad) ** Full Changelog ** * Moved to Github CI for Continuous Integration, dropping support for old Linux and macOS releases. (#3728) * Vastly improved command parsing, in particular for setting flow filters (@typoon) * Added a new flow export for raw responses (@mckeimic) * URLs are now edited in an external editor (@Jessonsotoventura) * mitmproxy now has a command history (@typoon) * Added terminal like keyboard shortcuts for the command bar (ctrl+w, ctrl+a, ctrl+f, ...) (@typoon) * Fixed issue with improper handling of non-ascii characters in URLs (@rjt-gupta) * Filtering can now use unicode characters (@rjt-gupta) * Fixed issue with user keybindings not being able to override default keybindings * Improved installation instructions * Added support for IPV6-only environments (@sethb157) * Fixed bug with server replay (@rjt-gupta) * Fixed issue with duplicate error responses (@ccssrryy) * Users can now set a specific external editor using $MITMPROXY_EDITOR (@rjt-gupta) * Config file can now be called `config.yml` or `config.yaml` (@ylmrx) * Fixed crash on `view.focus.[next|prev]` (@ylmrx) * Updated documentation to help using mitmproxy certificate on Android (@jannst) * Added support to parse IPv6 entries from `pfctl` on MacOS. (@tomlabaude) * Fixed instructions on how to build the documentation (@jannst) * Added a new `--allow-hosts` option (@pierlon) * Added support for zstd content-encoding (@tsaaristo) * Fixed issue where the replay server would corrupt the Date header (@tonyb486) * Improve speed for WebSocket interception (@MathieuBordere) * Fixed issue with parsing JPEG files. (@lusceu) * Improve example code style (@BoboTiG) * Fixed issue converting void responses to HAR (@worldmind) * Color coded http status codes in mitmweb (@arun-94) * Added organization to generated certificates (@Abcdefghijklmnopqrstuvwxyzxyz) * Errors are now displayed on sys.stderr (@JessicaFavin) * Fixed issue with replay timestamps (@rjt-gupta) * Fixed copying in mitmweb on macOS (@XZzYassin)
Revision 1.25.2.1 / (download) - annotate - [select for diffs], Tue Jul 23 11:26:22 2019 UTC (4 years, 8 months ago) by bsiegert
Branch: pkgsrc-2019Q2
Changes since 1.25: +2 -2
lines
Diff to previous 1.25 (colored) next main 1.26 (colored) to selected 1.22 (colored)
Pullup ticket #6009 - requested by leot
net/mitmproxy: bugfix
Revisions pulled up:
- net/mitmproxy/Makefile 1.26
- net/mitmproxy/distinfo 1.17
- net/mitmproxy/patches/patch-mitmproxy_proxy_protocol_websocket.py 1.2
---
Module Name: pkgsrc
Committed By: leot
Date: Sun Jul 21 12:16:29 UTC 2019
Modified Files:
pkgsrc/net/mitmproxy: Makefile distinfo
pkgsrc/net/mitmproxy/patches:
patch-mitmproxy_proxy_protocol_websocket.py
Log Message:
mitmproxy: Fix support with newer py-wsproto
Backport upstream commit 106948d996d74bf5ff7e3511f35eefea0a90561f
(except setup.py change) to fix support with py-wsproto 0.13.0 and newer.
PKGREVISION++
Revision 1.26 / (download) - annotate - [select for diffs], Sun Jul 21 12:16:28 2019 UTC (4 years, 8 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2019Q3-base,
pkgsrc-2019Q3
Changes since 1.25: +2 -2
lines
Diff to previous 1.25 (colored) to selected 1.22 (colored)
mitmproxy: Fix support with newer py-wsproto Backport upstream commit 106948d996d74bf5ff7e3511f35eefea0a90561f (except setup.py change) to fix support with py-wsproto 0.13.0 and newer. PKGREVISION++
Revision 1.25 / (download) - annotate - [select for diffs], Fri Apr 26 13:14:08 2019 UTC (4 years, 11 months ago) by maya
Branch: MAIN
CVS Tags: pkgsrc-2019Q2-base
Branch point for: pkgsrc-2019Q2
Changes since 1.24: +2 -2
lines
Diff to previous 1.24 (colored) to selected 1.22 (colored)
Omit mentions of python 34 and 35, after those were removed. - Includes some whitespace changes, to be handled in a separate commit.
Revision 1.24 / (download) - annotate - [select for diffs], Thu Apr 25 07:33:11 2019 UTC (4 years, 11 months ago) by maya
Branch: MAIN
Changes since 1.23: +2 -2
lines
Diff to previous 1.23 (colored) to selected 1.22 (colored)
PKGREVISION bump for anything using python without a PYPKGPREFIX. This is a semi-manual PKGREVISION bump.
Revision 1.23 / (download) - annotate - [select for diffs], Mon Apr 15 10:19:04 2019 UTC (5 years ago) by leot
Branch: MAIN
Changes since 1.22: +6 -2
lines
Diff to previous 1.22 (colored)
mitmproxy: Add a patch to fix with newer py-wsproto API changes in >=0.13.0 Unfortunately the .orig file is also installed, add a post-install: target to clean `*.orig' left. Bump PKGREVISION
Revision 1.22 / (download) - annotate - [selected], Thu Aug 9 11:51:41 2018 UTC (5 years, 8 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2019Q1-base,
pkgsrc-2019Q1,
pkgsrc-2018Q4-base,
pkgsrc-2018Q4,
pkgsrc-2018Q3-base,
pkgsrc-2018Q3
Changes since 1.21: +8 -2
lines
Diff to previous 1.21 (colored)
mitmproxy: Update net/mitmproxy to 4.0.4
pkgsrc changes:
- Instead of maintaining patches/patch-setup.py rewrite the logic to avoid
too strict version dependencies via SUBST.
Changes:
31 July 2018: mitmproxy 4.0.4
* Security: Protect mitmweb against DNS rebinding. (CVE-2018-14505, @atx)
* Reduce certificate lifetime to two years to be conformant with
the current CA/Browser Forum Baseline Requirements. (@muffl0n)
(https://cabforum.org/2017/03/17/ballot-193-825-day-certificate-lifetimes/)
* Update cryptography to version 2.3.
15 June 2018: mitmproxy 4.0.3
* Add support for IPv6 transparent mode on Windows (#3174)
* Add Docker images for ARMv7 - Raspberry Pi (#3190)
* Major overhaul of our release workflow - you probably won't notice it, but for us it's a big thing!
* Fix the Python version detection on Python 3.5, we now show a more intuitive error message (#3188)
* Fix application shutdown on Windows (#3172)
* Fix IPv6 scope suffixes in block addon (#3164)
* Fix options update when added (#3157)
* Fix "Edit Flow" button in mitmweb (#3136)
15 June 2018: mitmproxy 4.0.2
* Skipped!
Revision 1.21 / (download) - annotate - [select for diffs], Thu May 17 13:06:13 2018 UTC (5 years, 11 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2018Q2-base,
pkgsrc-2018Q2
Changes since 1.20: +6 -12
lines
Diff to previous 1.20 (colored) to selected 1.22 (colored)
mitmproxy: Update net/mitmproxy to 4.0.1 pkgsrc changes: - Take MAINTAINERship - Sync DEPENDS with setup.py - Add Python 3.5 to PYTHON_VERSIONS_INCOMPATIBLE (mitmproxy now requires Python 3.6) Changes: mitmproxy 4.0.1 --------------- The previous release had a packaging issue, so we bumped it to v4.0.1 and re-released it. This contains no actual bugfixes or new features. mitmproxy 4.0 ------------- Features -------- * mitmproxy now requires Python 3.6! * Moved the core to asyncio - which gives us a very significant performance boost! * Reduce memory consumption by using `SO_KEEPALIVE` (#3076) * Export request as httpie command (#3031) * Configure mitmproxy console keybindings with the keys.yaml file. See docs for more. Breaking Changes ---------------- * The --conf command-line flag is now --confdir, and specifies the mitmproxy configuration directory, instead of the options yaml file (which is at `config.yaml` under the configuration directory). * `allow_remote` got replaced by `block_global` and `block_private` (#3100) * No more custom events (#3093) * The `cadir` option has been renamed to `confdir` * We no longer magically capture print statements in addons and translate them to logs. Please use `ctx.log.info` explicitly. Bugfixes -------- * Correctly block connections from remote clients with IPv4-mapped IPv6 client addresses (#3099) * Expand `~` in paths during the `cut` command (#3078) * Remove socket listen backlog constraint * Improve handling of user script exceptions (#3050, #2837) * Ignore signal errors on windows * Fix traceback for commands with un-terminated escape characters (#2810) * Fix request replay when proxy is bound to local interface (#2647) * Fix traceback when running scripts on a flow twice (#2838) * Fix traceback when killing intercepted flow (#2879) * And lots of typos, docs improvements, revamped examples, and general fixes!
Revision 1.20 / (download) - annotate - [select for diffs], Thu Apr 5 17:53:02 2018 UTC (6 years ago) by leot
Branch: MAIN
Changes since 1.19: +2 -4
lines
Diff to previous 1.19 (colored) to selected 1.22 (colored)
mitmproxy: Update net/mitmproxy to 3.0.4 pkgsrc changes: - py-h11 and py-requests are no longer needed, delete them from DEPENDS (`h11' is no more used while `requests' is only an extra dependency) Changes: 05 April 2018: mitmproxy 3.0.4 * Fix an issue that caused mitmproxy to not retry HTTP requests on timeout. * Misc bug fixes and improvements
Revision 1.19 / (download) - annotate - [select for diffs], Mon Feb 26 12:28:48 2018 UTC (6 years, 1 month ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2018Q1-base,
pkgsrc-2018Q1
Changes since 1.18: +15 -16
lines
Diff to previous 1.18 (colored) to selected 1.22 (colored)
mitmproxy: Update net/mitmproxy to 3.0.3
pkgsrc changes:
- Sync DEPENDS with upstream setup.py
- Update DESCR to reflect current reality
Changes:
23 February 2018: mitmproxy 3.0
* Fix a quote-related issue affecting the mitmproxy console command prompt
22 February 2018: mitmproxy 3.0
Major Changes
-------------
* Commands: A consistent, typed mechanism that allows addons to expose
actions to users.
* Options: A typed settings store for use by mitmproxy and addons.
* Shift most of mitmproxy's own functionality into addons.
* Major improvements to mitmproxy console, including an almost complete
rewrite of the user interface, integration of commands, key bindings, and
multi-pane layouts.
* Major Improvements to mitmproxyãàÑÔ web interface, mitmweb. (Matthew Shao,
Google Summer of Code 2017)
* Major Improvements to mitmproxyãàÑÔ content views and protocol layers (Ujjwal
Verma, Google Summer of Code 2017)
* Faster JavaScript and CSS beautifiers. (Ujjwal Verma)
Minor Changes
-------------
* Vastly improved JavaScript test coverage (Matthew Shao)
* Options editor for mitmweb (Matthew Shao)
* Static web-based flow viewer (Matthew Shao)
* Request streaming for HTTP/1.x and HTTP/2 (Ujjwal Verma)
* Implement more robust content views using Kaitai Struct (Ujjwal Verma)
* Protobuf decoding now works without protoc being installed on the host
system (Ujjwal Verma)
* PNG, GIF, and JPEG can now be parsed without Pillow, which simplifies
mitmproxy installation and moves parsing from unsafe C to pure Python
(Ujjwal Verma)
* Add parser for ICO files (Ujjwal Verma)
* Migrate WebSockets implementation to wsproto. This reduces code size and
adds WebSocket compression support. (Ujjwal Verma)
* Add ãà×Ôplit viewãàto split mitmproxyãàÑÔ UI into two separate panes.
* Add key binding viewer and editor
* Add a command to spawn a preconfigured Chrome browser instance from
mitmproxy
* Fully support mitmproxy under the Windows Subsystem for Linux (WSL), work
around display errors
* Add XSS scanner addon (@ddworken)
* Add ability to toggle interception (@mattweidner)
* Numerous documentation improvements (@pauloromeira, @rst0git, @rgerganov,
@fulldecent, @zhigang1992, @F1ashhimself, @vinaydargar, @jonathanrfisher1,
@BasThomas, @LuD1161, @ayamamori, @TomTasche)
* Add filters for websocket flows (@s4chin)
* Make it possible to create a response to CONNECT requests in http_connect
(@mengbiping)
* Redirect stdout in scripts to ctx.log.warn (@nikofil)
* Fix a crash when clearing the event log (@krsoninikhil)
* Store the generated certificate for each flow (@dlenski)
* Add --keep-host-header to retain the host header in reverse proxy mode
(@krsoninikhil)
* Fix setting palette options (@JordanLoehr)
* Fix a crash with brotli encoding (@whackashoe)
* Provide certificate installation instructions on mitm.it (@ritiek)
* Fix a bug where we did not properly fall back to IPv4 when IPv6 is
unavailable (@titeuf87)
* Fix transparent mode on IPv6-enabled macOS systems (@Ga-ryo)
* Fix handling of HTTP messages with multiple Content-Length headers
(@surajt97)
* Fix IPv6 authority form parsing in CONNECT requests (@r1b)
* Fix event log display in mitmweb (@syahn)
* Remove private key from PKCS12 file in ~/.mitmproxy (@ograff).
* Add LDAP as a proxy authentication backend (@charlesdhdt)
* Use mypy to check the whole codebase (@iharsh234)
* Fix a crash when duplicating flows (@iharsh234)
* Fix testsuite when the path contains a ãàãà(@felixonmars)
* Store proxy authentication with flows (@lymanZerga11)
* Match ~d and ~u filters against pretty_host (@dequis)
* Update WBXML content view (@davidpshaw)
* Handle HEAD requests for mitm.it to support Chrome in transparent mode on
iOS (@tomlabaude)
* Update dns spoofing example to use --keep-host-header (@krsoninikhil)
* Call error handler on HTTPException (@tarnacious)
* Make it possible to remove TLS from upstream HTTP connections
* Update to pyOpenSSL 17.5, cryptography 2.1.4, and OpenSSL 1.1.0g
* Make it possible to retroactively increase log verbosity.
* Make logging from addons thread-safe
* Tolerate imports in user scripts that match hook names (`from mitmproxy
import log`)
* Update mitmweb to React 16, which brings performance improvements
* Fix a bug where reverting duplicated flows crashes mitmproxy
* Fix a bug where successive requests are sent to the wrong host after a
request has been redirected.
* Fix a bug that binds outgoing connections to the wrong interface
* Fix a bug where custom certificates are ignored in reverse proxy mode
* Fix import of flows that have been created with mitmproxy 0.17
* Fix formatting of (IPv6) IP addresses in a number of places
* Fix replay for HTTP/2 flows
* Decouple mitmproxy version and flow file format version
* Fix a bug where ãà×Îitmdump -nrãàdoes not exit automatically
* Fix a crash when exporting flows to curl
* Fix formatting of sticky cookies
* Improve script reloading reliability by polling the filesystem instead of
using watchdog
* Fix a crash when refreshing Set-Cookie headers
* Add connection indicator to mitmweb to alert users when the proxy server
stops running
* Add support for certificates with cyrillic domains
* Simplify output of mitmproxy --version
* Add Request.make to simplify request creation in scripts
* Pathoc: Include a host header on CONNECT requests
* Remove HTML outline contentview (#2572)
* Remove Python and Locust export (#2465)
* Remove emojis from tox.ini because flake8 cannot parse that. :(
Revision 1.18 / (download) - annotate - [select for diffs], Sun Sep 3 08:53:12 2017 UTC (6 years, 7 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2017Q4-base,
pkgsrc-2017Q4,
pkgsrc-2017Q3-base,
pkgsrc-2017Q3
Changes since 1.17: +2 -2
lines
Diff to previous 1.17 (colored) to selected 1.22 (colored)
Follow some redirects.
Revision 1.17 / (download) - annotate - [select for diffs], Wed Jun 21 08:34:00 2017 UTC (6 years, 9 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2017Q2-base,
pkgsrc-2017Q2
Changes since 1.16: +2 -2
lines
Diff to previous 1.16 (colored) to selected 1.22 (colored)
Update net/mitmproxy to 2.0.2.
Changes:
28 April 2017: mitmproxy 2.0.2
* Fix mitmweb's Content-Security-Policy to work with Chrome 58+
* HTTP/2: actually use header normalization from hyper-h2
Revision 1.16 / (download) - annotate - [select for diffs], Fri Apr 14 13:15:04 2017 UTC (7 years ago) by leot
Branch: MAIN
Changes since 1.15: +13 -10
lines
Diff to previous 1.15 (colored) to selected 1.22 (colored)
Update net/mitmproxy to 2.0.1
Changes:
15 March 2017: mitmproxy 2.0.1
* bump cryptography dependency
* bump pyparsing dependency
* HTTP/2: use header normalization from hyper-h2
21 February 2017: mitmproxy 2.0
* HTTP/2 is now enabled by default.
* Image ContentView: Parse images with Kaitai Struct (kaitai.io) instead of Pillow.
This simplifies installation, reduces binary size, and allows parsing in pure Python.
* Web: Add missing flow filters.
* Add transparent proxy support for OpenBSD.
* Check the mitmproxy CA for expiration and warn the user to regenerate it if necessary.
* Testing: Tremendous improvements, enforced 100% coverage for large parts of the
codebase, increased overall coverage.
* Enforce individual coverage: one source file -> one test file with 100% coverage.
* A myriad of other small improvements throughout the project.
* Numerous bugfixes.
26 December 2016: mitmproxy 1.0
* All mitmproxy tools are now Python 3 only! We plan to support Python 3.5 and higher.
* Web-Based User Interface: Mitmproxy now offically has a web-based user interface
called mitmweb. We consider it stable for all features currently exposed
in the UI, but it still misses a lot of mitmproxyãàÑÔ options.
* Windows Compatibility: With mitmweb, mitmproxy is now useable on Windows.
We are also introducing an installer (kindly sponsored by BitRock) that
simplifies setup.
* Configuration: The config file format is now a single YAML file. In most cases,
converting to the new format should be trivial - please see the docs for
more information.
* Console: Significant UI improvements - including sorting of flows by
size, type and url, status bar improvements, much faster indentation for
HTTP views, and more.
* HTTP/2: Significant improvements, but is temporarily disabled by default
due to wide-spread protocol implementation errors on some large website
* WebSocket: The protocol implementation is now mature, and is enabled by
default. Complete UI support is coming in the next release. Hooks for
message interception and manipulation are available.
* A myriad of other small improvements throughout the project.
16 October 2016: mitmproxy 0.18
* Python 3 Compatibility for mitmproxy and pathod (Shadab Zafar, GSoC 2016)
* Major improvements to mitmweb (Clemens Brunner & Jason Hao, GSoC 2016)
* Internal Core Refactor: Separation of most features into isolated Addons
* Initial Support for WebSockets
* Improved HTTP/2 Support
* Reverse Proxy Mode now automatically adjusts host headers and TLS Server Name Indication
* Improved HAR export
* Improved export functionality for curl, python code, raw http etc.
* Flow URLs are now truncated in the console for better visibility
* New filters for TCP, HTTP and marked flows.
* Mitmproxy now handles comma-separated Cookie headers
* Merge mitmproxy and pathod documentation
* Mitmdump now sanitizes its console output to not include control characters
* Improved message body handling for HTTP messages:
.raw_content provides the message body as seen on the wire
.content provides the decompressed body (e.g. un-gzipped)
.text provides the body decompressed and decoded body
* New HTTP Message getters/setters for cookies and form contents.
* Add ability to view only marked flows in mitmproxy
* Improved Script Reloader (Always use polling, watch for whole directory)
* Use tox for testing
* Unicode support for tnetstrings
* Add dumpfile converters for mitmproxy versions 0.11 and 0.12
* Numerous bugfixes
Revision 1.15 / (download) - annotate - [select for diffs], Thu Mar 16 14:34:41 2017 UTC (7 years, 1 month ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2017Q1-base,
pkgsrc-2017Q1
Changes since 1.14: +3 -1
lines
Diff to previous 1.14 (colored) to selected 1.22 (colored)
Add (missing but needed) dependency to devel/py-requests Bump PKGREVISION
Revision 1.14 / (download) - annotate - [select for diffs], Sun Jan 1 14:43:50 2017 UTC (7 years, 3 months ago) by wiz
Branch: MAIN
Changes since 1.13: +2 -2
lines
Diff to previous 1.13 (colored) to selected 1.22 (colored)
Add python-3.6 to incompatible versions.
Revision 1.13 / (download) - annotate - [select for diffs], Sat Jul 9 13:03:59 2016 UTC (7 years, 9 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2016Q4-base,
pkgsrc-2016Q4,
pkgsrc-2016Q3-base,
pkgsrc-2016Q3
Changes since 1.12: +2 -2
lines
Diff to previous 1.12 (colored) to selected 1.22 (colored)
Remove python33: adapt all packages that refer to it.
Revision 1.12 / (download) - annotate - [select for diffs], Thu Apr 21 08:20:45 2016 UTC (7 years, 11 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2016Q2-base,
pkgsrc-2016Q2
Changes since 1.11: +17 -11
lines
Diff to previous 1.11 (colored) to selected 1.22 (colored)
Update net/mitmproxy to 0.17
Changes:
9 April 2016: mitmproxy 0.17
* Simplify repository and release structure. mitmproxy now comes as a single package, including netlib and pathod.
* Rename the Python package from libmproxy to mitmproxy.
* New option to add server certs to client chain (CVE-2016-2402, John Kozyrakis)
* Enable HTTP/2 by default (Thomas Kriechbaumer)
* Improved HAR extractor (Shadab Zafar)
* Add icon for OSX and Windows binaries
* Add content view for query parameters (Will Coster)
* Initial work on Python 3 compatibility
* locust.io export (Zohar Lorberbaum)
* Fix XSS vulnerability in HTTP errors (Will Coster)
* Numerous bugfixes and minor improvements
Revision 1.11 / (download) - annotate - [select for diffs], Sun Feb 21 23:54:28 2016 UTC (8 years, 1 month ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2016Q1-base,
pkgsrc-2016Q1
Changes since 1.10: +3 -2
lines
Diff to previous 1.10 (colored) to selected 1.22 (colored)
Update MASTER_SITES. Thanks and noticed by wiz@.
Revision 1.10 / (download) - annotate - [select for diffs], Tue Feb 16 13:54:00 2016 UTC (8 years, 2 months ago) by leot
Branch: MAIN
Changes since 1.9: +9 -9
lines
Diff to previous 1.9 (colored) to selected 1.22 (colored)
Update net/mitmproxy to 0.16.
Changes:
v0.16
-----
* Completely revised HTTP2 implementation based on hyper-h2 (Thomas
Kriechbaumer)
* Export flows as cURL command, Python code or raw HTTP (Shadab Zafar)
* Fixed compatibility with the Android Emulator (Will Coster)
* Script Reloader: Inline scripts are reloaded automatically if modified
(Matthew Shao)
* Inline script hooks for TCP mode (Michael J. Bazzinotti)
* Add default ciphers to support iOS9 App Transport Security (Jorge
Villacorta)
* Basic Authentication for mitmweb (Guillem Anguera)
* Exempt connections from interception based on TLS Server Name Indication
(David Weinstein)
* Provide Python Wheels for faster installation
* Numerous bugfixes and minor improvements
Revision 1.9 / (download) - annotate - [select for diffs], Thu Feb 11 11:07:58 2016 UTC (8 years, 2 months ago) by leot
Branch: MAIN
Changes since 1.8: +2 -1
lines
Diff to previous 1.8 (colored) to selected 1.22 (colored)
Avoid too strict requirements (upper limit of dependencies versions), again! Bump PKGREVISION.
Revision 1.8 / (download) - annotate - [select for diffs], Wed Dec 30 15:08:08 2015 UTC (8 years, 3 months ago) by leot
Branch: MAIN
Changes since 1.7: +14 -14
lines
Diff to previous 1.7 (colored) to selected 1.22 (colored)
Update net/mitmproxy to 0.15.
Changes:
4 December 2015: mitmproxy 0.15
* Support for loading and converting older dumpfile formats (0.13 and up)
* Content views for inline script (@chrisczub)
* Better handling of empty header values (Benjamin Lee/@bltb)
* Fix a gnarly memory leak in mitmdump
* A number of bugfixes and small improvements
Revision 1.7 / (download) - annotate - [select for diffs], Sat Dec 5 21:25:52 2015 UTC (8 years, 4 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2015Q4-base,
pkgsrc-2015Q4
Changes since 1.6: +2 -2
lines
Diff to previous 1.6 (colored) to selected 1.22 (colored)
Extend PYTHON_VERSIONS_INCOMPATIBLE to 35
Revision 1.6 / (download) - annotate - [select for diffs], Mon Nov 16 18:33:51 2015 UTC (8 years, 5 months ago) by leot
Branch: MAIN
Changes since 1.5: +7 -3
lines
Diff to previous 1.5 (colored) to selected 1.22 (colored)
Update net/mitmproxy to 0.14.0. Changes: * Statistics: 399 commits, 13 contributors, 79 closed issues, 37 closed PRs, 103 days * Docs: Greatly updated docs now hosted on ReadTheDocs! http://docs.mitmproxy.org * Docs: Fixed Typos, updated URLs etc. (Nick Badger, Ben Lerner, Choongwoo Han, onlywade, Jurriaan Bremer) * mitmdump: Colorized TTY output * mitmdump: Use mitmproxy's content views for human-readable output (Chris Czub) * mitmproxy and mitmdump: Support for displaying UTF8 contents * mitmproxy: add command line switch to disable mouse interaction (Timothy Elliott) * mitmproxy: bug fixes (Choongwoo Han, sethp-jive, FreeArtMan) * mitmweb: bug fixes (Colin Bendell) * libmproxy: Add ability to fall back to TCP passthrough for non-HTTP connections. * libmproxy: Avoid double-connect in case of TLS Server Name Indication. This yields a massive speedup for TLS handshakes. * libmproxy: Prevent unneccessary upstream connections (macmantrl) * Inline Scripts: New API for HTTP Headers: http://docs.mitmproxy.org/en/latest/dev/models.html#netlib.http.Headers * Inline Scripts: Properly handle exceptions in `done` hook * Inline Scripts: Allow relative imports, provide `__file__` * Examples: Add probabilistic TLS passthrough as an inline script
Revision 1.5 / (download) - annotate - [select for diffs], Sun Aug 23 14:32:24 2015 UTC (8 years, 7 months ago) by leot
Branch: MAIN
CVS Tags: pkgsrc-2015Q3-base,
pkgsrc-2015Q3
Changes since 1.4: +12 -8
lines
Diff to previous 1.4 (colored) to selected 1.22 (colored)
Update net/mitmproxy to mitmproxy-0.13.
Changes:
22 July 2015: mitmproxy 0.13
* Misc bug fixes
3 June 2015: mitmproxy 0.12.1
* mitmproxy console: mouse interaction - scroll in the flow list, click on
flow to view, click to switch between tabs.
* Update our crypto defaults: SHA256, 2048 bit RSA, 4096 bit DH parameters.
* BUGFIX: crash under some circumstances when copying to clipboard.
* BUGFIX: occasional crash when deleting flows.
18 May 2015: mitmproxy 0.12
* mitmproxy console: Significant revamp of the UI. The major changes are
listed below, and in addition almost every aspect of the UI has
been tweaked, and performance has improved significantly.
* mitmproxy console: A new options screen has been created ("o" shortcut),
and many options that were previously manipulated directly via a
keybinding have been moved there.
* mitmproxy console: Big improvement in palettes. This includes improvements
to all colour schemes. Palettes now set the terminal background colour by
default, and a new --palette-transparent option has been added to disable
this.
* mitmproxy console: g/G shortcuts throughout mitmproxy console to jump
to the beginning/end of the current view.
* mitmproxy console: switch palettes on the fly from the options screen.
* mitmproxy console: A cookie editor has been added for mitmproxy console
at long last.
* mitmproxy console: Various components of requests and responses can be
copied to the clipboard from mitmproxy - thanks to @marceloglezer.
* Support for creating new requests from scratch in mitmproxy console (@marceloglezer).
* SSLKEYLOGFILE environment variable to specify a logging location for TLS
master keys. This can be used with tools like Wireshark to allow TLS
decoding.
* Server facing SSL cipher suite specification (thanks to Jim Shaver).
* Official support for transparent proxying on FreeBSD - thanks to Mike C
(http://github.com/mike-pt).
* Many other small bugfixes and improvemenets throughout the project.
Revision 1.4 / (download) - annotate - [select for diffs], Mon Mar 9 09:18:03 2015 UTC (9 years, 1 month ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2015Q2-base,
pkgsrc-2015Q2,
pkgsrc-2015Q1-base,
pkgsrc-2015Q1
Changes since 1.3: +12 -8
lines
Diff to previous 1.3 (colored) to selected 1.22 (colored)
Update to 0.11.3, provided by Leonardo Taccari in PR 49730:
Update net/mitmproxy to 0.11.3.
Changes:
29 Dec 2014: mitmproxy 0.11.3:
* Bug fixes (-w option and #435 issue).
29 Dec 2014: mitmproxy 0.11.2:
* Configuration files - mitmproxy.conf, mitmdump.conf, common.conf in the
.mitmproxy directory.
* Better handling of servers that reject connections that are not SNI.
* Many other small bugfixes and improvements.
15 November 2014: mitmproxy 0.11.1:
* Bug fixes: connection leaks some crashes
7 November 2014: mitmproxy 0.11:
* Performance improvements for mitmproxy console
* SOCKS5 proxy mode allows mitmproxy to act as a SOCKS5 proxy server
* Data streaming for response bodies exceeding a threshold
(bradpeabody@gmail.com)
* Ignore hosts or IP addresses, forwarding both HTTP and HTTPS traffic
untouched
* Finer-grained control of traffic replay, including options to ignore
contents or parameters when matching flows (marcelo.glezer@gmail.com)
* Pass arguments to inline scripts
* Configurable size limit on HTTP request and response bodies
* Per-domain specification of interception certificates and keys (see
--cert option)
* Certificate forwarding, relaying upstream SSL certificates verbatim (see
--cert-forward)
* Search and highlighting for HTTP request and response bodies in
mitmproxy console (pedro@worcel.com)
* Transparent proxy support on Windows
* Improved error messages and logging
* Support for FreeBSD in transparent mode, using pf (zbrdge@gmail.com)
* Content view mode for WBXML (davidshaw835@air-watch.com)
* Better documentation, with a new section on proxy modes
* Generic TCP proxy mode
* Countless bugfixes and other small improvements
28 January 2014: mitmproxy 0.10:
* Support for multiple scripts and multiple script arguments
* Easy certificate install through the in-proxy web app, which is now
enabled by default
* Forward proxy mode, that forwards proxy requests to an upstream HTTP server
* Reverse proxy now works with SSL
* Search within a request/response using the "/" and "n" shortcut keys
* A view that beatifies CSS files if cssutils is available
* Bug fix, documentation improvements, and more.
25 August 2013: mitmproxy 0.9.2:
* Improvements to the mitmproxywrapper.py helper script for OSX.
* Don't take minor version into account when checking for serialized file
compatibility.
* Fix a bug causing resource exhaustion under some circumstances for SSL
connections.
* Revamp the way we store interception certificates. We used to store these
on disk, they're now in-memory. This fixes a race condition related to
cert handling, and improves compatibility with Windows, where the rules
governing permitted file names are weird, resulting in errors for some
valid IDNA-encoded names.
* Display transfer rates for responses in the flow list.
* Many other small bugfixes and improvements.
16 June 2013: mitmproxy 0.9.1:
* Use "correct" case for Content-Type headers added by mitmproxy.
* Make UTF environment detection more robust.
* Improved MIME-type detection for viewers.
* Always read files in binary mode (Windows compatibility fix).
* Some developer documentation.
Revision 1.3 / (download) - annotate - [select for diffs], Fri May 9 07:37:14 2014 UTC (9 years, 11 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2014Q4-base,
pkgsrc-2014Q4,
pkgsrc-2014Q3-base,
pkgsrc-2014Q3,
pkgsrc-2014Q2-base,
pkgsrc-2014Q2
Changes since 1.2: +2 -2
lines
Diff to previous 1.2 (colored) to selected 1.22 (colored)
Mark packages that are not ready for python-3.3 also not ready for 3.4, until proven otherwise.
Revision 1.2 / (download) - annotate - [select for diffs], Sat Jan 25 10:30:16 2014 UTC (10 years, 2 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2014Q1-base,
pkgsrc-2014Q1
Changes since 1.1: +2 -2
lines
Diff to previous 1.1 (colored) to selected 1.22 (colored)
Mark packages as not ready for python-3.x where applicable; either because they themselves are not ready or because a dependency isn't. This is annotated by PYTHON_VERSIONS_INCOMPATIBLE= 33 # not yet ported as of x.y.z or PYTHON_VERSIONS_INCOMPATIBLE= 33 # py-foo, py-bar respectively, please use the same style for other packages, and check during updates. Use versioned_dependencies.mk where applicable. Use REPLACE_PYTHON instead of handcoded alternatives, where applicable. Reorder Makefile sections into standard order, where applicable. Remove PYTHON_VERSIONS_INCLUDE_3X lines since that will be default with the next commit. Whitespace cleanups and other nits corrected, where necessary.
Revision 1.1 / (download) - annotate - [select for diffs], Wed May 15 22:39:26 2013 UTC (10 years, 11 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2013Q4-base,
pkgsrc-2013Q4,
pkgsrc-2013Q3-base,
pkgsrc-2013Q3,
pkgsrc-2013Q2-base,
pkgsrc-2013Q2
Diff to selected 1.22 (colored)
Import mitmproxy-0.9 as net/mitmproxy. This package contains tool for HTTP(S) sniffing. mitmproxy is an interactive, SSL-capable man-in-the-middle proxy for HTTP with a console interface. mitmdump is the command-line version of mitmproxy. Think tcpdump for HTTP. libmproxy is the library that mitmproxy and mitmdump are built on.